Report - deconfort.ro/xr/adobe/

Report Overview

Submitted URL
deconfort.ro/xr/adobe/
IP
31.14.22.170
ASN
#5606 GTS Telecom SRL
Submitted
2022-12-02 22:09:56
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
82

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	54.203.75.56
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	6.2 kB	23.36.77.32
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682 B	1.6 kB	93.184.220.29
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	686 B	1.4 kB	142.250.74.131
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	381 B	44 kB	142.250.74.168
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	369 B	21 kB	142.250.74.110
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	51 kB	34.120.237.76
deconfort.ro	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	31 kB	577 kB	31.14.22.170
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-02	medium	deconfort.ro/xr/adobe/	Phishing
2022-12-02	medium	deconfort.ro/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1	Phishing
2022-12-02	medium	deconfort.ro/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.5	Phishing
2022-12-02	medium	deconfort.ro/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.5	Phishing
2022-12-02	medium	deconfort.ro/wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.css?ver=4.7.0	Phishing
2022-12-02	medium	deconfort.ro/wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.6	Phishing
2022-12-02	medium	deconfort.ro/wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.15.0	Phishing
2022-12-02	medium	deconfort.ro/wp-includes/css/classic-themes.min.css?ver=1	Phishing
2022-12-02	medium	deconfort.ro/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4	Phishing
2022-12-02	medium	deconfort.ro/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css?ver=3.0.6	Phishing
2022-12-02	medium	deconfort.ro/wp-content/plugins/woo-category-slider-grid/public/css/font-awesome.min.css?ver=1.4.12	Phishing
2022-12-02	medium	deconfort.ro/wp-content/plugins/woo-category-slider-grid/public/css/woo-category-slider-public.min.css?ver=1.4.12	Phishing
2022-12-02	medium	deconfort.ro/wp-content/plugins/woo-category-slider-grid/deprecated/public/assets/css/responsive.css?ver=1.1.3	Phishing
2022-12-02	medium	deconfort.ro/wp-content/plugins/ajax-search-for-woocommerce/assets/css/style.min.css?ver=1.20.0	Phishing
2022-12-02	medium	deconfort.ro/wp-content/themes/deconfort/assets/css/woo/woocommerce.min.css?ver=6.1.1	Phishing
2022-12-02	medium	deconfort.ro/wp-content/themes/deconfort/assets/fonts/fontawesome/css/all.min.css?ver=5.11.2	Phishing
2022-12-02	medium	deconfort.ro/wp-content/plugins/wpb-woocommerce-related-products-slider/assets/css/owl.carousel.css?ver=2.3.4	Phishing
2022-12-02	medium	deconfort.ro/wp-content/plugins/wpb-woocommerce-related-products-slider/assets/css/main.css?ver=1.0	Phishing
2022-12-02	medium	deconfort.ro/wp-includes/js/jquery/jquery.min.js?ver=3.6.1	Phishing
2022-12-02	medium	deconfort.ro/wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.6	Phishing
2022-12-02	medium	deconfort.ro/wp-content/plugins/iks-menu/assets/js/public.js?ver=1.9.8	Phishing
2022-12-02	medium	deconfort.ro/wp-content/plugins/iks-menu/assets/js/menu.js?ver=1.9.8	Phishing
2022-12-02	medium	deconfort.ro/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0	Phishing
2022-12-02	medium	deconfort.ro/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6	Phishing
2022-12-02	medium	deconfort.ro/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4	Phishing
2022-12-02	medium	deconfort.ro/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0	Phishing
2022-12-02	medium	deconfort.ro/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0	Phishing
2022-12-02	medium	deconfort.ro/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0	Phishing
2022-12-02	medium	deconfort.ro/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0	Phishing
2022-12-02	medium	deconfort.ro/wp-content/plugins/wpb-woocommerce-related-products-slider/assets/js/owl.carousel.js?ver=2.3.4	Phishing
2022-12-02	medium	deconfort.ro/wp-content/themes/deconfort/assets/js/third/woo/woo-mini-cart.min.js?ver=1.8.9	Phishing
2022-12-02	medium	deconfort.ro/wp-content/themes/deconfort/assets/js/third/woo/woo-scripts.min.js?ver=1.8.9	Phishing
2022-12-02	medium	deconfort.ro/wp-content/themes/deconfort/assets/js/third/magnific-popup.min.js?ver=1.8.9	Phishing
2022-12-02	medium	deconfort.ro/wp-content/themes/deconfort/assets/js/third/lightbox.min.js?ver=1.8.9	Phishing
2022-12-02	medium	deconfort.ro/wp-content/plugins/woo-category-slider-grid/public/js/swiper.js?ver=1.4.12	Phishing
2022-12-02	medium	deconfort.ro/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1	Phishing
2022-12-02	medium	deconfort.ro/wp-content/themes/deconfort/assets/fonts/fontawesome/webfonts/fa-solid-900.woff2	Phishing
2022-12-02	medium	deconfort.ro/wp-content/themes/deconfort/assets/fonts/fontawesome/webfonts/fa-brands-400.woff2	Phishing
2022-12-02	medium	deconfort.ro/?wc-ajax=get_refreshed_fragments	Phishing
2022-12-02	medium	deconfort.ro/xr/adobe/	Phishing
2022-12-02	medium	deconfort.ro/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.15.0	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (43)

	URL	Size	First Seen	Last Seen
	deconfort.ro/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0	3.0 kB	2023-03-08	2024-04-19
Pretty URL deconfort.ro/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0 IP 31.14.22.170 ASN #5606 GTS Telecom SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:24:31 Last Seen2024-04-19 10:30:00 Times Seen11345 Hash f449e3e4a7c058f7c48f57e05c788fb0 e7b0c58a1a14c14a92e452cc544b312ed91fa52e bfd861dc2936299f52adca1da826c273dced7c77ad4c33d31916ad55ab354e89 Loading...

	deconfort.ro/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0	15 kB	2023-03-07	2024-04-18
Pretty URL deconfort.ro/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0 IP 31.14.22.170 ASN #5606 GTS Telecom SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:19 Last Seen2024-04-18 07:54:28 Times Seen4411 Hash 157f18464a93eab7fb62a7f3e618ac2c f47727e80d529d6e4941fea32f2e8a8ee5008b8a 9ed8f2a0e573467348e64fb1945eeac1698f32af9e9c723153eb7142d6a43306 Loading...

	deconfort.ro/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.15.0	25 kB	2023-03-07	2024-03-26
Pretty URL deconfort.ro/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.15.0 IP 31.14.22.170 ASN #5606 GTS Telecom SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:51 Last Seen2024-03-26 16:04:57 Times Seen826 Hash 540be7a8259fbeaf4a732a344b267a7d ac51cc9bb5df51bd9568de8707b9b176f7d60254 a692f16cca3d27ae6772b85e05c46d117ca45678783d5ee010df7d67e8f12485 Loading...

	deconfort.ro/wp-content/plugins/ajax-search-for-woocommerce/assets/js/search.min.js?ver=1.20.0	59 kB	2023-03-07	2024-04-09
Pretty URL deconfort.ro/wp-content/plugins/ajax-search-for-woocommerce/assets/js/search.min.js?ver=1.20.0 IP 31.14.22.170 ASN #5606 GTS Telecom SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:29:05 Last Seen2024-04-09 17:29:03 Times Seen108 Hash 4b7ef174a50e82c7bc12394e5369c568 a0d0f9601b86c210c626fe40583938673a8bbcbd 329c07e24b180ebb4cc5ed810d659c790af8b90ebff2cf19e5a149473664b286 Loading...

	deconfort.ro/xr/adobe/	126 B	2023-03-08	2023-03-26
Pretty URL deconfort.ro/xr/adobe/ IP 31.14.22.170 ASN #5606 GTS Telecom SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:02:16 Last Seen2023-03-26 11:49:51 Times Seen2 Hash 4f29800b3100302b37d528dd5e1a1c7c f550e696dff846f8329a2031c881633a00b0f5dc f0683e4e78d8713778528094f5b557bc68b2ffe4991e5d1d30955aec0bd35876 Loading...

	deconfort.ro/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6	21 kB	2023-03-07	2024-04-18
Pretty URL deconfort.ro/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6 IP 31.14.22.170 ASN #5606 GTS Telecom SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:51 Last Seen2024-04-18 15:36:02 Times Seen3343 Hash f3d7b1578081c9cf982cfbc29f514836 fdb6b04b917b9a1c72e3cf2da686c2584d3fd50f c0f874276d38c6d9e43767d76a15de39506461b268a3cbf19fc8218f3ec8631a Loading...

	deconfort.ro/wp-content/plugins/woo-category-slider-grid/public/js/swiper-config.js?ver=1.4.12	5.8 kB	2023-03-08	2023-03-12
Pretty URL deconfort.ro/wp-content/plugins/woo-category-slider-grid/public/js/swiper-config.js?ver=1.4.12 IP 31.14.22.170 ASN #5606 GTS Telecom SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:48:51 Last Seen2023-03-12 20:06:38 Times Seen1 Hash 71bda16cb8f656d5f7a3e2c6df3d2b0a 91e745457c3b60103c4096f01a8789b7cf8f586b a396ef368285471edd34cbd8541d657aec6c46410ea7a521bec5b9fe4a918cd7 Loading...

	deconfort.ro/wp-content/plugins/wpb-woocommerce-related-products-slider/assets/js/init.js?ver=1.0	1.3 kB	2023-03-08	2024-02-26
Pretty URL deconfort.ro/wp-content/plugins/wpb-woocommerce-related-products-slider/assets/js/init.js?ver=1.0 IP 31.14.22.170 ASN #5606 GTS Telecom SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:02:16 Last Seen2024-02-26 12:28:56 Times Seen25 Hash 16cd7ce0d08b9ed9f777a20dca538d3b 072119858b2565628305f511f9a094a2ef8a2ee2 f0b6e86a8a433a6ad15c5e953615bda798c9ecc7f4a74697763614e5cf5e66a1 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-04-19
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-19 19:03:21 Times Seen1521 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	deconfort.ro/xr/adobe/	470 B	2023-03-08	2023-03-12
Pretty URL deconfort.ro/xr/adobe/ IP 31.14.22.170 ASN #5606 GTS Telecom SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:02:16 Last Seen2023-03-12 20:06:38 Times Seen1 Hash c085281560598f3d24a6c000492496e3 4761704e7277ca33031f877528ec485eb9257cda 8db598ab4748169a65a5a327349917f07ccd6519dde76b16ff5ac65add74247f Loading...

	deconfort.ro/wp-content/plugins/woo-category-slider-grid/public/js/preloader.min.js?ver=1.4.12	421 B	2023-03-07	2023-09-20
Pretty URL deconfort.ro/wp-content/plugins/woo-category-slider-grid/public/js/preloader.min.js?ver=1.4.12 IP 31.14.22.170 ASN #5606 GTS Telecom SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:30:18 Last Seen2023-09-20 22:33:59 Times Seen9 Hash c290142d61c17e0b1cbd39e2122abbf5 71a6afa148bfeff58c7a206f6deeda13bd9e9dfa e32381f2b471ccf2c4490d50eb541e70dc217b0381cfba9cca65eaa8edc04494 Loading...

	deconfort.ro/wp-content/plugins/woo-category-slider-grid/admin/js/woo-category-slider-admin.min.js?ver=1.4.12	588 B	2023-03-08	2023-03-12
Pretty URL deconfort.ro/wp-content/plugins/woo-category-slider-grid/admin/js/woo-category-slider-admin.min.js?ver=1.4.12 IP 31.14.22.170 ASN #5606 GTS Telecom SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:48:51 Last Seen2023-03-12 20:06:38 Times Seen1 Hash 1c39bb2d302a0d90525c3daa74336bac 14e041f4b24fc2e2345f101e99fa52319e52025e 95e2ea25857b904a331f56543e4c6d6f10a1d1eac712d46e467960b5224b0062 Loading...

	deconfort.ro/xr/adobe/	260 B	2023-03-08	2023-03-26
Pretty URL deconfort.ro/xr/adobe/ IP 31.14.22.170 ASN #5606 GTS Telecom SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:02:16 Last Seen2023-03-26 11:49:51 Times Seen2 Hash c43b587c95a72b266dfc85fdcff30840 e3b91c3bdd6d3c5f88e7eb7161a29c4b24dda893 34ae45d4e4786149aea549e0fb14bd4508e3e3209d5d90c5a986b63b083311b7 Loading...

	deconfort.ro/wp-includes/js/jquery/jquery.min.js?ver=3.6.1	90 kB	2023-03-08	2024-04-19
Pretty URL deconfort.ro/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 IP 31.14.22.170 ASN #5606 GTS Telecom SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-19 20:39:51 Times Seen31782 Hash 17738318d61d394f1de8890d589afaec f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3 cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981 Loading...

	deconfort.ro/xr/adobe/	159 B	2023-03-08	2023-03-26
Pretty URL deconfort.ro/xr/adobe/ IP 31.14.22.170 ASN #5606 GTS Telecom SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:02:16 Last Seen2023-03-26 11:49:51 Times Seen2 Hash 219e338fb3334023c25d4fb4a492ad00 ef6d8a7671ee5a8a30d7accf778a9a8ccf3ad830 337b0ba1bbecfaa0ba746acc2f245243033407cf71e0791165f24fd6bd7f9167 Loading...

	www.googletagmanager.com/gtag/js?id=UA-78965485-1	112 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtag/js?id=UA-78965485-1 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:48:51 Last Seen2023-03-08 14:48:51 Times Seen1 Hash 272241e2265c3160418534326edd9011 f7bbf5f957453382defc13035657079a80728902 9c91bd32d5f97e6b9ddec5130ee598d6c552d5b8d889be72ce7f44f08f44aae4 Loading...

	deconfort.ro/wp-content/themes/deconfort/assets/js/main.min.js?ver=1.8.9	124 kB	2023-03-07	2024-01-22
Pretty URL deconfort.ro/wp-content/themes/deconfort/assets/js/main.min.js?ver=1.8.9 IP 31.14.22.170 ASN #5606 GTS Telecom SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:12 Last Seen2024-01-22 10:13:13 Times Seen258 Hash 2a404a5041616504a16dbd54df05895f be3f828cc84e58d7f63dec874ac439c9d3931967 5499d2c00777abf036de4c100fca21e9adbb4375ca4714841779ad81850c6dea Loading...

	deconfort.ro/xr/adobe/	135 B	2023-03-07	2024-04-20
Pretty URL deconfort.ro/xr/adobe/ IP 31.14.22.170 ASN #5606 GTS Telecom SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:50 Last Seen2024-04-20 00:22:51 Times Seen26559 Hash 3f82b089cf163a5417b3edb4687151f7 28436f92ab540ff08b12fdefddc7da67ba0f04f7 5ba9af6f12e99663f8f04285ef3d4ffd4cdbca820bccbc2dda9c40f805b5a850 Loading...

	deconfort.ro/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0	2.1 kB	2023-03-07	2024-04-19
Pretty URL deconfort.ro/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0 IP 31.14.22.170 ASN #5606 GTS Telecom SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-04-19 20:32:03 Times Seen22363 Hash b72c1cbb1530a011a27bd9800f26765a 27b825c5d8255f33b8427a059d4545ebd65e1746 a256fccecac3b32ab73c91d79a18747519a1a18023be05465c933b03523a82e8 Loading...

	deconfort.ro/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0	2.9 kB	2023-03-07	2024-04-19
Pretty URL deconfort.ro/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0 IP 31.14.22.170 ASN #5606 GTS Telecom SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-04-19 10:30:00 Times Seen13949 Hash 0fd625c3991a4015814cffdc88e2fc82 d7c2f53e058210ff3ea773297641008bab71a5f3 2d022db650d194d935faea46a40e5512235b43bc3f8b181e32ce6d3dd745f4e1 Loading...

	deconfort.ro/wp-content/themes/deconfort/assets/js/third/woo/woo-scripts.min.js?ver=1.8.9	4.6 kB	2023-03-07	2023-12-07
Pretty URL deconfort.ro/wp-content/themes/deconfort/assets/js/third/woo/woo-scripts.min.js?ver=1.8.9 IP 31.14.22.170 ASN #5606 GTS Telecom SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:29:17 Last Seen2023-12-07 08:59:08 Times Seen33 Hash a9d9a3e14ad0adb1afa7390fa79eef3c 888fdf6fe0b51036ff7c19d17dd05b8ee7d642ac d94da08fbcb8cd6aedd35fd0f07d130cefd53c46649da42595078582a21c7246 Loading...

	deconfort.ro/wp-content/themes/deconfort/assets/js/third/lightbox.min.js?ver=1.8.9	1.2 kB	2023-03-07	2024-02-09
Pretty URL deconfort.ro/wp-content/themes/deconfort/assets/js/third/lightbox.min.js?ver=1.8.9 IP 31.14.22.170 ASN #5606 GTS Telecom SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:12 Last Seen2024-02-09 07:57:28 Times Seen801 Hash 56a50e704483c4892b4494345fdf805d 90975f2047e0081f9cd10455e92ee4f79a3ca8ea b3508f4edf4b9fc794d82068f7b39b0c5b462f4bb47a01754c1925b30f3bdecb Loading...

	deconfort.ro/xr/adobe/	5.7 kB	2023-03-08	2023-03-12
Pretty URL deconfort.ro/xr/adobe/ IP 31.14.22.170 ASN #5606 GTS Telecom SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:02:16 Last Seen2023-03-12 20:06:38 Times Seen1 Hash 2ec3c9e99a85a28d5a2ba9a008dff6dc 58f35c4920421d1770a3875eac68d222430898a7 58aa61eef69d20b589c8b1c1debe727d6255ab2aa591e1a299898ee6cab491df Loading...

	deconfort.ro/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0	1.8 kB	2023-03-07	2024-04-19
Pretty URL deconfort.ro/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0 IP 31.14.22.170 ASN #5606 GTS Telecom SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-04-19 20:32:03 Times Seen21566 Hash d0a6d8547c66b0d7b0172466558d1208 ff93916519c7b9483251f609e4d29f38c30a66e3 3b1384ff918d4b7f95f9ee5c8fc388203dedff7344d3d96598c9562162788612 Loading...

	deconfort.ro/xr/adobe/	294 B	2023-03-08	2023-03-26
Pretty URL deconfort.ro/xr/adobe/ IP 31.14.22.170 ASN #5606 GTS Telecom SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:02:16 Last Seen2023-03-26 11:49:51 Times Seen2 Hash 23157c73101a5872e031e11dbf367c17 79e7a290a2298fe81b2a783f844feea429de7f0b bacf0ae3f8d9fae600946e57c49302f255e22ece66caf96a7634b1c419c9ae03 Loading...

	deconfort.ro/xr/adobe/	625 B	2023-03-08	2023-03-26
Pretty URL deconfort.ro/xr/adobe/ IP 31.14.22.170 ASN #5606 GTS Telecom SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:02:16 Last Seen2023-03-26 11:49:51 Times Seen2 Hash 60f66d0849dc0724e6dc646c26425ce1 9aad82391fb8f9a2c6ad560da158b2f63721bbbf e85a1a469fbc0b3db388d952dbf485e8c5d63d52b2bc7c3f9f79057bac463c1a Loading...

	deconfort.ro/xr/adobe/	96 B	2023-03-07	2024-04-18
Pretty URL deconfort.ro/xr/adobe/ IP 31.14.22.170 ASN #5606 GTS Telecom SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:19 Last Seen2024-04-18 07:54:28 Times Seen3542 Hash d8772bfb2ec7dec5262a932766aa1669 8440292e305868d90f6f15a3ea6975a3b9774f43 c19c2ee1fc048012374a6d75c822daf9b7c0d4ebef7ab8df1ab22b229a00d012 Loading...

	deconfort.ro/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-19
Pretty URL deconfort.ro/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 31.14.22.170 ASN #5606 GTS Telecom SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-19 22:30:21 Times Seen68500 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	deconfort.ro/wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.6	34 kB	2023-03-07	2024-04-19
Pretty URL deconfort.ro/wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.6 IP 31.14.22.170 ASN #5606 GTS Telecom SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:28 Last Seen2024-04-19 22:53:20 Times Seen7224 Hash dffa195b546cf1dfd52f2206955eb892 a3d48e8f126eb96d12191d76ed71ad2bc8651d59 6c52384c7b0641dd1ead85d079c22d39bcc6dc5f2537afb1e6396bb619771a3f Loading...

	deconfort.ro/xr/adobe/	1.5 kB	2023-03-08	2023-03-08
Pretty URL deconfort.ro/xr/adobe/ IP 31.14.22.170 ASN #5606 GTS Telecom SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:48:51 Last Seen2023-03-08 14:48:51 Times Seen1 Hash b54bf6dc0e91aaf3349e01ba13ea7374 e929894e066adda4f70bef54abac753207aaefc4 64df1be0472df68313067a0d7a8d49cffed1ec1d1bf460c0ac7607d3fbeeca7d Loading...

	deconfort.ro/xr/adobe/	1.9 kB	2023-03-08	2023-03-26
Pretty URL deconfort.ro/xr/adobe/ IP 31.14.22.170 ASN #5606 GTS Telecom SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:02:16 Last Seen2023-03-26 11:49:51 Times Seen2 Hash f597a4eca5243cf4ba0abf0982e97828 af74e930ef991a5d3ce736a0e89c3f31648cf460 f32256aead8314e38b242b42be55e2893089bf84f37d9dcd36f5634be4220121 Loading...

	deconfort.ro/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1	19 kB	2023-03-07	2024-04-19
Pretty URL deconfort.ro/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 IP 31.14.22.170 ASN #5606 GTS Telecom SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-19 20:39:52 Times Seen37996 Hash 32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782 Loading...

	deconfort.ro/wp-content/plugins/wpb-woocommerce-related-products-slider/assets/js/owl.carousel.js?ver=2.3.4	44 kB	2023-03-07	2024-04-19
Pretty URL deconfort.ro/wp-content/plugins/wpb-woocommerce-related-products-slider/assets/js/owl.carousel.js?ver=2.3.4 IP 31.14.22.170 ASN #5606 GTS Telecom SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:37 Last Seen2024-04-19 15:49:50 Times Seen19835 Hash f416f9031fef25ae25ba9756e3eb6978 e2a600e433df72b4cfde93d7880e3114917a3cbe a53c43f834b32309b084ea9314df8307e9c78cee2202c6e07f216ae4ae5b704d Loading...

	deconfort.ro/wp-includes/js/imagesloaded.min.js?ver=4.1.4	5.6 kB	2023-03-07	2024-04-18
Pretty URL deconfort.ro/wp-includes/js/imagesloaded.min.js?ver=4.1.4 IP 31.14.22.170 ASN #5606 GTS Telecom SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:40 Last Seen2024-04-18 13:42:00 Times Seen30936 Hash 3a56752b736635bf69cb069b8818cbfd 42e0951fe74bb3f56a30f51291823bcd4a84d76e ff4bd34aa98a0214833619d3d751838db015722dfbbec15cd14dadc66cd67869 Loading...

	deconfort.ro/wp-content/themes/deconfort/assets/js/third/magnific-popup.min.js?ver=1.8.9	20 kB	2023-03-07	2024-02-09
Pretty URL deconfort.ro/wp-content/themes/deconfort/assets/js/third/magnific-popup.min.js?ver=1.8.9 IP 31.14.22.170 ASN #5606 GTS Telecom SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:12 Last Seen2024-02-09 07:57:27 Times Seen282 Hash 2517e56d2a6dcd602b827f83ba7a80cc 25c72e290cc0a03c0565c4457715e2b3cba0d2ed fc2da3abe6c0bd73ab8dfeb064cdaa2b134a14847c402c06225d8aaad8e03c8f Loading...

	deconfort.ro/xr/adobe/	152 B	2023-03-07	2024-04-20
Pretty URL deconfort.ro/xr/adobe/ IP 31.14.22.170 ASN #5606 GTS Telecom SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:09 Last Seen2024-04-20 00:22:51 Times Seen19853 Hash b8c40bf7c92768058d743847cccdb147 4fbbbcb2dda4d05e2e58bf43330c559b4165fc0b 7872ff233c7b2bfa962f491d0575e71f0b0b487bc63899ff4c72c7c9d5197688 Loading...

	deconfort.ro/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0	9.5 kB	2023-03-08	2024-04-19
Pretty URL deconfort.ro/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0 IP 31.14.22.170 ASN #5606 GTS Telecom SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:24:31 Last Seen2024-04-19 20:32:03 Times Seen14359 Hash 4ffc462852340d9e6b5b7b29276fcb71 5e04050e09e3f7d8107ef3b9aa9313be618c460e 18336635cd5e9edf2aff3ae18b67250684311c2a459457091b063dafba57d526 Loading...

	deconfort.ro/wp-content/plugins/woo-category-slider-grid/public/js/swiper.js?ver=1.4.12	316 kB	2023-03-07	2023-05-20
Pretty URL deconfort.ro/wp-content/plugins/woo-category-slider-grid/public/js/swiper.js?ver=1.4.12 IP 31.14.22.170 ASN #5606 GTS Telecom SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:32:46 Last Seen2023-05-20 04:21:40 Times Seen2 Hash 34cd3ac1fcc9010297ad3e79cfb67e3f 4d26063f75690558c174a59a3039e1ea7ca046ce 00261b10175c7de99911dd7e0928509483c0ff3b1b176f0707ed146f01ff2c9f Loading...

	deconfort.ro/wp-content/themes/deconfort/assets/js/third/woo/woo-mini-cart.min.js?ver=1.8.9	786 B	2023-03-07	2023-12-07
Pretty URL deconfort.ro/wp-content/themes/deconfort/assets/js/third/woo/woo-mini-cart.min.js?ver=1.8.9 IP 31.14.22.170 ASN #5606 GTS Telecom SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:29:17 Last Seen2023-12-07 08:59:08 Times Seen28 Hash d429b1cf4d0c319139b0c0c488e3ace8 7dddd63f75970beb3806085d6f594dbfaa37d853 64c73f204afea9a851b83f9b0a10118ab572265a357fb107411a6b642b2ed661 Loading...

	deconfort.ro/xr/adobe/	2.1 kB	2023-03-08	2023-03-26
Pretty URL deconfort.ro/xr/adobe/ IP 31.14.22.170 ASN #5606 GTS Telecom SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:48:51 Last Seen2023-03-26 11:49:51 Times Seen2 Hash 855ca3f5f3c7728a54f936d9aded7cec 6d49d85aea27bd7800e5fa2920ebe51a95e95529 cd4a2244f5109efa7500c260603f3eca03146aa1a4005401371437c8e7a88c2c Loading...

	deconfort.ro/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4	9.9 kB	2023-03-08	2024-04-18
Pretty URL deconfort.ro/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 IP 31.14.22.170 ASN #5606 GTS Telecom SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:19 Last Seen2024-04-18 12:23:23 Times Seen3132 Hash dc74c9954b1944928eca0172c3b8c6b3 e9e00e587e0e28491b69563b4e768945ff2e0ed5 d7eff2d3185c4035edbe18b653f9da26c2d872e03c92419542ed524d569fe81b Loading...

	deconfort.ro/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4	12 kB	2023-03-08	2024-04-18
Pretty URL deconfort.ro/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 IP 31.14.22.170 ASN #5606 GTS Telecom SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:19 Last Seen2024-04-18 12:23:25 Times Seen3477 Hash 1f9968a7c7a2a02491393fb9d4103dae 0032c8a6a692e6f072b2cef20828449402fdd57d f1d5583d4c00ebe19c7be536e72ab8234c1f926023cb5a1fd5edbe9c912f0f49 Loading...

	deconfort.ro/wp-content/plugins/iks-menu/assets/js/public.js?ver=1.9.8	936 B	2023-03-07	2024-02-06
Pretty URL deconfort.ro/wp-content/plugins/iks-menu/assets/js/public.js?ver=1.9.8 IP 31.14.22.170 ASN #5606 GTS Telecom SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:04:52 Last Seen2024-02-06 15:10:02 Times Seen173 Hash c420b02a027eebce7d4873d36928c95d ff80dc5148b4785e234dd78807cb61cbed7d0888 3c3bba90a7213ff2e27dcd979d3bd5bd0dbe4be17f0b47b6535847313e139e50 Loading...

HTTP Transactions (91)

URL IP Response Size

deconfort.ro/xr/adobe/

31.14.22.170

301 Moved Permanently

707 B

URL HTTP/1.1
deconfort.ro/xr/adobe/
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
707 B (707 bytes)
Hash
1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /xr/adobe/ HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Fri, 02 Dec 2022 22:09:44 GMT
server: LiteSpeed
location: https://deconfort.ro/xr/adobe/

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8961
Expires: Sat, 03 Dec 2022 00:39:05 GMT
Date: Fri, 02 Dec 2022 22:09:44 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
7439fb99a444b66db1e68ffbfaa38451
4b7742d7956485906f1c392c478515ff89a46184
636327ce88f733e5a1d39af212f97242717a39ce20edaef330fafea238e3a309

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5868
Cache-Control: max-age=136759
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 22:09:44 GMT
Etag: "6389d3f3-1d7"
Expires: Sun, 04 Dec 2022 12:09:03 GMT
Last-Modified: Fri, 02 Dec 2022 10:31:15 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 02 Dec 2022 21:18:12 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3092
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6585
Expires: Fri, 02 Dec 2022 23:59:29 GMT
Date: Fri, 02 Dec 2022 22:09:44 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: Z26RlWinHAbvD+iK6sHm+pnsN09EXqIHkAKUI3LFcnNOInG+/8xCzWOmYGhnw+R5RbJlxcniThc=
x-amz-request-id: BWG7MHMJ9FHDD0D6
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 02 Dec 2022 21:46:51 GMT
age: 1374
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 22:09:45 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 02 Dec 2022 21:11:16 GMT
cache-control: public,max-age=3600
age: 3509
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
7f1f8fc556d1f7e0aea3e1208ee2fd1c
09c341a56ff876479cfc8a0505a5fef4a5d110f1
65adcf58887bcc23f73379f74ab19a61cfbb93285c95c64b44a6716eeacc1482

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5860
Cache-Control: max-age=131689
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 22:09:45 GMT
Etag: "6389c02e-1d7"
Expires: Sun, 04 Dec 2022 10:44:34 GMT
Last-Modified: Fri, 02 Dec 2022 09:06:54 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471

deconfort.ro/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1

31.14.22.170

200 OK

12 kB

URL HTTP/2
deconfort.ro/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text, with very long lines (47826)
Size
12 kB (11616 bytes)
Hash
c4d7cc056b49b00e05cc29cc59aa3d5a
48c426bec60099d2a8628df430ed682c72aab42a
8009c12f2674a8d38401f4b5faad1fef2cfcd18a8c927ed2561ae9d7de9b57b5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Wed, 16 Nov 2022 06:59:17 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11616
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.5

31.14.22.170

200 OK

1.8 kB

URL HTTP/2
deconfort.ro/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.5
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text, with very long lines (10435), with no line terminators
Size
1.8 kB (1754 bytes)
Hash
f7237084ac82ea6a4f5bf1448c3a2148
60457635a5e809ee1199c61090d8e33b91e8e1f2
18a1cb7f08c1ace52a79f46d73461ed03bf8cf5c9e8a3687eacc3e04f08e7a09

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.5 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Wed, 09 Nov 2022 06:59:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1754
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

push.services.mozilla.com/

54.203.75.56

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.203.75.56:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: gxYSI/cAxbtD+fgKzmRoUA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: /0cKa7n6PLaT8NqxdGEMzb0JA2c=

deconfort.ro/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.5

31.14.22.170

200 OK

23 kB

URL HTTP/2
deconfort.ro/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.5
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Size
23 kB (22871 bytes)
Hash
0c6730c96c60030ddaf42fcf5daf3b17
feb4c0071f27718582e58d365022a1b559de5765
d996bec53b493bc579754f29f7d6d0b5332f3354c860a3787e2365a79c44f995

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.5 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Wed, 09 Nov 2022 06:59:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 22871
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0

31.14.22.170

200 OK

670 B

URL HTTP/2
deconfort.ro/wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text, with very long lines (2630), with no line terminators
Size
670 B (670 bytes)
Hash
6867f0990d852a8660a2d6f7a6675183
0240940bdf174107a14d132fa82b50b1445ff2f8
598b0ec44ac00e2f238bebe6077530ad4e6ac41f99122d495313302b380c2868

HTTP Headers

GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Mon, 14 Nov 2022 18:59:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 670
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.css?ver=4.7.0

31.14.22.170

200 OK

6.6 kB

URL HTTP/2
deconfort.ro/wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.css?ver=4.7.0
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text, with very long lines (30441)
Size
6.6 kB (6581 bytes)
Hash
3160c468e16b391c087428c6961602de
0e39e52d4887d3e52e7af98526a76a8b788738ed
4aaedd1cc4ee377bb8b5390fe56da25db79b9cf2d7e6c0d64c1bc8fc88436a95

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.css?ver=4.7.0 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Mon, 14 Nov 2022 18:59:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6581
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.6

31.14.22.170

200 OK

1.9 kB

URL HTTP/2
deconfort.ro/wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.6
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text, with very long lines (9281), with no line terminators
Size
1.9 kB (1863 bytes)
Hash
dc91028c24ac0d7a6f4872a1320fa5e8
508ce388de37cd7cf6eedcea816789880589479e
c019b08c90cf3573e8ea887626853781059d1af59698f7929cdc94c84054bddf

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.6 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Wed, 09 Nov 2022 06:59:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1863
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.15.0

31.14.22.170

200 OK

4.6 kB

URL HTTP/2
deconfort.ro/wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.15.0
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text, with very long lines (29337), with no line terminators
Size
4.6 kB (4583 bytes)
Hash
d57b8bb9da5c87b07c0bbfbf68eedfde
d85a4b62617cef8db8476076d9a2c4b5def0e226
0eccad1a79bcc73c4bd29ff253cd618161eb102c60cc755f42c55f7b85a1b763

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.15.0 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Mon, 14 Nov 2022 18:59:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4583
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-includes/css/classic-themes.min.css?ver=1

31.14.22.170

200 OK

144 B

URL HTTP/2
deconfort.ro/wp-includes/css/classic-themes.min.css?ver=1
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text
Size
144 B (144 bytes)
Hash
fcbd239f30d9a6dd1f3637f291143d37
2871bf7d98af3f43e42f7fa32808048e7134fabf
c2f98e9d71f782b7a3266cd337c61ae6c8dcbb7203669c07852aa2ab65ab6144

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Thu, 10 Nov 2022 07:42:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 144
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4

31.14.22.170

200 OK

848 B

URL HTTP/2
deconfort.ro/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text
Size
848 B (848 bytes)
Hash
c962ba8e7d42ff9da18392b41dad5151
7b89bc5e6ad161df2e6d7f7fb3ad894aa04b827f
322a4949c5bdd82eb80c13bbbd407ce30a7ad226685c54270d246cb6960e524e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Wed, 19 Oct 2022 18:59:37 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 848
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css?ver=3.0.6

31.14.22.170

200 OK

823 B

URL HTTP/2
deconfort.ro/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css?ver=3.0.6
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text
Size
823 B (823 bytes)
Hash
325a132d75412944b23be0b51a6bdff8
1fb8127a72457da6483b02c58e1734d37ee4101c
197bea6294f188f78751349248e706c6b3b37a18c9a80323d617c197d77fd1bd

HTTP Headers

GET /wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css?ver=3.0.6 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Mon, 28 Nov 2022 06:59:07 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 823
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css?ver=3.0.6

31.14.22.170

200 OK

4.1 kB

URL HTTP/2
deconfort.ro/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css?ver=3.0.6
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text
Size
4.1 kB (4116 bytes)
Hash
ffa5cbdcb246c4cf2f6723f008bd93ec
171c531ec60cf2d0f81b654b2004adaa49493ab1
de8d5460fafabe376ea48120abade25c3b0f27a4f511af19bd41569106c1052b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css?ver=3.0.6 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Mon, 28 Nov 2022 06:59:07 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4116
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/plugins/related-posts-thumbnails/assets/css/front.css?ver=1.9.0

31.14.22.170

200 OK

800 B

URL HTTP/2
deconfort.ro/wp-content/plugins/related-posts-thumbnails/assets/css/front.css?ver=1.9.0
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text, with CRLF line terminators
Size
800 B (800 bytes)
Hash
855bb030bfa250235e9cbc7e135403a9
ddd86dec954ba756d038dadcd6dbf437df1e53d7
90ebb082a230b44d0ca1863a30885d40e1ddfff73278fa2f81ffad166cc33eb0

HTTP Headers

GET /wp-content/plugins/related-posts-thumbnails/assets/css/front.css?ver=1.9.0 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Fri, 22 Jul 2022 09:58:25 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 800
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/plugins/woo-category-slider-grid/public/css/font-awesome.min.css?ver=1.4.12

31.14.22.170

200 OK

6.7 kB

URL HTTP/2
deconfort.ro/wp-content/plugins/woo-category-slider-grid/public/css/font-awesome.min.css?ver=1.4.12
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text, with very long lines (30837)
Size
6.7 kB (6658 bytes)
Hash
97c6ce9b4936f66aa388ad33c39aba2d
3f14a7e78fbb4935cf35c20779dc2035531849a9
1eea453c424793fc56ef14093c10b373e3ca8388a70e847394e8084048c5ce38

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/woo-category-slider-grid/public/css/font-awesome.min.css?ver=1.4.12 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Thu, 24 Nov 2022 18:59:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6658
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/plugins/woo-category-slider-grid/public/css/woo-category-slider-public.min.css?ver=1.4.12

31.14.22.170

200 OK

654 B

URL HTTP/2
deconfort.ro/wp-content/plugins/woo-category-slider-grid/public/css/woo-category-slider-public.min.css?ver=1.4.12
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text, with very long lines (2598), with no line terminators
Size
654 B (654 bytes)
Hash
045ac3a9e3ac68ce5059bbcd19492add
c2e9784d64b24ed9cac3e42f5fa3e51986aa99ce
b5aeca5f6bdb64913326676e028e9dc3b5b075b3953588bb34a928a0266645b6

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/woo-category-slider-grid/public/css/woo-category-slider-public.min.css?ver=1.4.12 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Thu, 24 Nov 2022 18:59:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 654
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/plugins/woo-category-slider-grid/deprecated/public/assets/css/style.css?ver=1.1.3

31.14.22.170

200 OK

1.2 kB

URL HTTP/2
deconfort.ro/wp-content/plugins/woo-category-slider-grid/deprecated/public/assets/css/style.css?ver=1.1.3
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text
Size
1.2 kB (1152 bytes)
Hash
d2bf89c3a717c02ed4284bbd3189f8d0
8c79bcf8a344211888590d311a418caba9e52018
e4a7cff2d55846842cb1ce8c20e52c960a964a1cdc2ab26055b115099a038f1c

HTTP Headers

GET /wp-content/plugins/woo-category-slider-grid/deprecated/public/assets/css/style.css?ver=1.1.3 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Thu, 24 Nov 2022 18:59:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1152
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/plugins/woo-category-slider-grid/deprecated/public/assets/css/responsive.css?ver=1.1.3

31.14.22.170

200 OK

313 B

URL HTTP/2
deconfort.ro/wp-content/plugins/woo-category-slider-grid/deprecated/public/assets/css/responsive.css?ver=1.1.3
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text
Size
313 B (313 bytes)
Hash
568dbb5aaec088cd5c68e225d5281be8
52b3394a134aded8ff1bc6fe1fa52c75e7ce8e9b
652ccb571267153d8ee0e075d26f8c3851b71d4599850a7831af7751b306ca02

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/woo-category-slider-grid/deprecated/public/assets/css/responsive.css?ver=1.1.3 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Thu, 24 Nov 2022 18:59:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 313
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/plugins/ajax-search-for-woocommerce/assets/css/style.min.css?ver=1.20.0

31.14.22.170

200 OK

5.6 kB

URL HTTP/2
deconfort.ro/wp-content/plugins/ajax-search-for-woocommerce/assets/css/style.min.css?ver=1.20.0
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text, with very long lines (33185)
Size
5.6 kB (5582 bytes)
Hash
28055b88381582d485c7df5345b4efd1
2eb5318a1ce767ef8e477ffe384ecf840e133734
b8e0b1d99ec6af9b3a7cba4e99c4687651bbc343188fb6aa39fdd881d262fff2

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/ajax-search-for-woocommerce/assets/css/style.min.css?ver=1.20.0 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Wed, 14 Sep 2022 16:42:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5582
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/plugins/product-categories-designs-for-woocommerce/assets/css/slick.css?ver=1.4.1

31.14.22.170

200 OK

441 B

URL HTTP/2
deconfort.ro/wp-content/plugins/product-categories-designs-for-woocommerce/assets/css/slick.css?ver=1.4.1
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text, with very long lines (1425), with CRLF line terminators
Size
441 B (441 bytes)
Hash
049c2ce182f5800442db9d67f3df1ded
5a92f45e4a9c8eb491e0c945cf01371231c741f6
3452b1e1468b64831bc2ef609bf46ebb007c04177aeedeeac9729d5e3e501dc7

HTTP Headers

GET /wp-content/plugins/product-categories-designs-for-woocommerce/assets/css/slick.css?ver=1.4.1 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Fri, 29 Jul 2022 18:05:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 441
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/plugins/product-categories-designs-for-woocommerce/assets/css/pcdfwoo-public.css?ver=1.4.1

31.14.22.170

200 OK

1.3 kB

URL HTTP/2
deconfort.ro/wp-content/plugins/product-categories-designs-for-woocommerce/assets/css/pcdfwoo-public.css?ver=1.4.1
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text, with very long lines (367)
Size
1.3 kB (1281 bytes)
Hash
ca2ea88aa5157529befd451ead0d62af
df8534e61c522499a99ec8334bc4fc4a8cc4e662
189c92eda44949fca98bfcd1dfcad6de22d77cb6e31b60b297abc1d2372b61c3

HTTP Headers

GET /wp-content/plugins/product-categories-designs-for-woocommerce/assets/css/pcdfwoo-public.css?ver=1.4.1 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Fri, 29 Jul 2022 18:05:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1281
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/themes/deconfort/assets/css/woo/woo-mini-cart.min.css?ver=6.1.1

31.14.22.170

200 OK

1.2 kB

URL HTTP/2
deconfort.ro/wp-content/themes/deconfort/assets/css/woo/woo-mini-cart.min.css?ver=6.1.1
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text, with very long lines (5867)
Size
1.2 kB (1160 bytes)
Hash
d066ac9af4493d15244e551ffbbce593
a4231019f266fb0362867c391048d6c08f00bb01
873e2b31cb8e76737863e1a7eae98cd6d9006c19b1866ce9e0c1641e1e9c7a91

HTTP Headers

GET /wp-content/themes/deconfort/assets/css/woo/woo-mini-cart.min.css?ver=6.1.1 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Wed, 23 Sep 2020 18:08:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1160
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8cd876589951719c94a6d49d1494bdbd
01600c8bb95fac543696e509b3e452b90d844572
e03942321526a2303220b1abd51f82f1d4cf80e0dd22a2582cf809b8bd729521

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 22:09:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

deconfort.ro/wp-content/themes/deconfort/assets/css/woo/woocommerce.min.css?ver=6.1.1

31.14.22.170

200 OK

12 kB

URL HTTP/2
deconfort.ro/wp-content/themes/deconfort/assets/css/woo/woocommerce.min.css?ver=6.1.1
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text, with very long lines (65439)
Size
12 kB (12480 bytes)
Hash
463e92ccc7f2362332712621ed2d70a5
a7099883d0aab5c5159a46c8eab36060018573da
15149506b0cb81c8b54ec286bd855683918cfd3fba39693cfa7c4db7b0175915

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/deconfort/assets/css/woo/woocommerce.min.css?ver=6.1.1 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Wed, 23 Sep 2020 18:08:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12480
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/themes/deconfort/assets/css/woo/woo-star-font.min.css?ver=6.1.1

31.14.22.170

200 OK

554 B

URL HTTP/2
deconfort.ro/wp-content/themes/deconfort/assets/css/woo/woo-star-font.min.css?ver=6.1.1
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text, with very long lines (2006), with no line terminators
Size
554 B (554 bytes)
Hash
41218aae562539436e7bfa03f3d20a54
597ceaaf3c75495d2d5c903334084bd512d982af
1e930ae3ff022d553841e7de6a3bf98da2bdcf2ade1ad8f6512110b7b2018ad4

HTTP Headers

GET /wp-content/themes/deconfort/assets/css/woo/woo-star-font.min.css?ver=6.1.1 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Wed, 23 Sep 2020 18:08:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 554
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/themes/deconfort/assets/fonts/fontawesome/css/all.min.css?ver=5.11.2

31.14.22.170

200 OK

12 kB

URL HTTP/2
deconfort.ro/wp-content/themes/deconfort/assets/fonts/fontawesome/css/all.min.css?ver=5.11.2
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text, with very long lines (56656)
Size
12 kB (11868 bytes)
Hash
539d25e5872f467d7d6e33fe1c2312f0
4bbc8854b6afa2440260ae671c81ec4dea11589e
2694ec62ccc8661b197949c466e58c7e36f87f009a7dcc33a6503578d88300af

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/deconfort/assets/fonts/fontawesome/css/all.min.css?ver=5.11.2 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Wed, 23 Sep 2020 18:08:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11868
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/themes/deconfort/assets/css/third/simple-line-icons.min.css?ver=2.4.0

31.14.22.170

200 OK

2.3 kB

URL HTTP/2
deconfort.ro/wp-content/themes/deconfort/assets/css/third/simple-line-icons.min.css?ver=2.4.0
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text, with very long lines (10909), with no line terminators
Size
2.3 kB (2306 bytes)
Hash
a40597353660fda4217b0d1c3f305ccb
33e8af974d0d0dd7ac1130291563ccd16aac0c4a
46258cd1efddef6c82da89bdea11e707b8068b692c6d29b16bc4e3de0fc68889

HTTP Headers

GET /wp-content/themes/deconfort/assets/css/third/simple-line-icons.min.css?ver=2.4.0 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Wed, 23 Sep 2020 18:08:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2306
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/themes/deconfort/assets/css/third/magnific-popup.min.css?ver=1.0.0

31.14.22.170

200 OK

1.4 kB

URL HTTP/2
deconfort.ro/wp-content/themes/deconfort/assets/css/third/magnific-popup.min.css?ver=1.0.0
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text, with very long lines (5235), with no line terminators
Size
1.4 kB (1401 bytes)
Hash
30f96dcedb12942dbda36a64348cabeb
5662ec6ab79f0607b9f002419d449606589f4217
ef087a2d2ea20356ff3ed660e2b79b735784e1f0a13fc7f212fc602f36c5adfd

HTTP Headers

GET /wp-content/themes/deconfort/assets/css/third/magnific-popup.min.css?ver=1.0.0 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Wed, 23 Sep 2020 18:08:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1401
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/themes/deconfort/assets/css/third/slick.min.css?ver=1.6.0

31.14.22.170

200 OK

498 B

URL HTTP/2
deconfort.ro/wp-content/themes/deconfort/assets/css/third/slick.min.css?ver=1.6.0
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text, with very long lines (1618), with no line terminators
Size
498 B (498 bytes)
Hash
19b2d14e196bdc9835bfb53c0cd8a294
a98c011c4fd493e20ca38c3e3a8b37e6657e34dc
3029e27eec26d77c1545ea8b854823c18538d8942fe325560dd3822360cabc4d

HTTP Headers

GET /wp-content/themes/deconfort/assets/css/third/slick.min.css?ver=1.6.0 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Wed, 23 Sep 2020 18:08:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 498
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/themes/deconfort/assets/css/style.min.css?ver=1.8.9

31.14.22.170

200 OK

22 kB

URL HTTP/2
deconfort.ro/wp-content/themes/deconfort/assets/css/style.min.css?ver=1.8.9
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (65531), with no line terminators
Size
22 kB (22065 bytes)
Hash
21a6324a77d7c29232a4e7001142ad33
ca263d08619dce621de466fb07bf9ec21ed37088
159adb2eab2d294b6850a8ed1d8201c49f2d15d6a649e367aad8c610b99778cd

HTTP Headers

GET /wp-content/themes/deconfort/assets/css/style.min.css?ver=1.8.9 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Wed, 23 Sep 2020 18:08:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 22065
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/plugins/wpb-woocommerce-related-products-slider/assets/css/owl.carousel.css?ver=2.3.4

31.14.22.170

200 OK

1.1 kB

URL HTTP/2
deconfort.ro/wp-content/plugins/wpb-woocommerce-related-products-slider/assets/css/owl.carousel.css?ver=2.3.4
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text, with very long lines (3184)
Size
1.1 kB (1124 bytes)
Hash
fcbee4e0c112b5d5d5e3b3b4b0dbcc17
3ba0629366aac0459a79deacb011b80478176540
f4e12894dae3280992f276760a1a70bd301e5e917be2f5c14b02f8a728a9b545

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/wpb-woocommerce-related-products-slider/assets/css/owl.carousel.css?ver=2.3.4 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Mon, 06 Sep 2021 06:57:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1124
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/plugins/wpb-woocommerce-related-products-slider/assets/css/main.css?ver=1.0

31.14.22.170

200 OK

1.6 kB

URL HTTP/2
deconfort.ro/wp-content/plugins/wpb-woocommerce-related-products-slider/assets/css/main.css?ver=1.0
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text
Size
1.6 kB (1636 bytes)
Hash
6ebb30281f2cabc80a2e1038eceecf75
8fd9d055f3833e9017647f01be92599d408a19cb
c0a77e6e2799354868569fbb5abbee81cbc831451dab496f946398d0e226f96c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/wpb-woocommerce-related-products-slider/assets/css/main.css?ver=1.0 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Mon, 06 Sep 2021 06:57:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1636
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-includes/js/jquery/jquery.min.js?ver=3.6.1

31.14.22.170

200 OK

30 kB

URL HTTP/2
deconfort.ro/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text, with very long lines (65447)
Size
30 kB (30324 bytes)
Hash
3a1740685bd5c0bbd5f2b812e1eb7fb4
488e07695da787fed18361c50292aef35abb5e81
4a07aed2d8cf88afdec0b56b365b951c76d387db3459166b5a0d25e2e6cc95ef

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Thu, 10 Nov 2022 07:42:21 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30324
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

31.14.22.170

200 OK

4.0 kB

URL HTTP/2
deconfort.ro/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text, with very long lines (11126)
Size
4.0 kB (3995 bytes)
Hash
7e058b51f939eacfa31cdface14dded5
9d732e5afdeb42edef9e1b9631b7e95e054787cc
4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3995
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.6

31.14.22.170

200 OK

7.2 kB

URL HTTP/2
deconfort.ro/wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.6
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text
Size
7.2 kB (7223 bytes)
Hash
8bd4d1eb07cb68a27223bf32f50184cf
ba804fa2dd6a4d2a9898ef6bf368e040401bfd10
a5ec6cc0c317459eb1ff1e6336e0857761ae1e5be6f9ab8ff92c53a78a79cd0c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.6 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Mon, 28 Nov 2022 06:59:07 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7223
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/plugins/iks-menu/assets/js/public.js?ver=1.9.8

31.14.22.170

200 OK

421 B

URL HTTP/2
deconfort.ro/wp-content/plugins/iks-menu/assets/js/public.js?ver=1.9.8
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text, with very long lines (936), with no line terminators
Size
421 B (421 bytes)
Hash
5ef787c2f7ef5fe9ba7515d8c1e14a8c
e690352f7404f1bd8e39a45975d10cd38168403d
477bcc99213c46dd21dddda3c00dbe954dda336f63ca28b57997760267fe0e53

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/iks-menu/assets/js/public.js?ver=1.9.8 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Fri, 22 Jul 2022 09:58:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 421
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/plugins/iks-menu/assets/css/public.css?ver=1.9.8

31.14.22.170

200 OK

20 kB

URL HTTP/2
deconfort.ro/wp-content/plugins/iks-menu/assets/css/public.css?ver=1.9.8
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text, with very long lines (47513)
Size
20 kB (19791 bytes)
Hash
d534589000eac35663a9baaa4cf4ff86
e4906a238e9f15bc33854fb1f5b8155c8f50f430
8666580d2ca44f25b0a989af9cf64a32be9dcf72225bc0b19fbeaf7a65b1068a

HTTP Headers

GET /wp-content/plugins/iks-menu/assets/css/public.css?ver=1.9.8 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: text/css
last-modified: Fri, 22 Jul 2022 09:58:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 19791
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-78965485-1

142.250.74.168

200 OK

44 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-78965485-1
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1921)
Size
44 kB (43653 bytes)
Hash
8ce005b1e68b93a392d26fd320ca0cc4
c8772f8fa600853535bb5e1d3d36c0197655a41c
752dfc12c7a9a79bb66ac19ddd6cb4c907567f5a87da761ae5b2fb07ab76ba65

HTTP Headers

GET /gtag/js?id=UA-78965485-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 02 Dec 2022 22:09:46 GMT
expires: Fri, 02 Dec 2022 22:09:46 GMT
cache-control: private, max-age=900
last-modified: Fri, 02 Dec 2022 21:30:22 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43653
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

deconfort.ro/wp-content/plugins/iks-menu/assets/js/menu.js?ver=1.9.8

31.14.22.170

200 OK

2.2 kB

URL HTTP/2
deconfort.ro/wp-content/plugins/iks-menu/assets/js/menu.js?ver=1.9.8
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text
Size
2.2 kB (2180 bytes)
Hash
19b6b77c0179022c365adac15a74ccae
afd68c1eda721590d498c2637dd693bdfd6bfd74
24a0ee1a12ab686de70ad7e4dd6ecc5f1a4bdc7cfa8b05a3cbfdca9e3ae50684

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/iks-menu/assets/js/menu.js?ver=1.9.8 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Fri, 22 Jul 2022 09:58:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2180
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0

31.14.22.170

200 OK

3.5 kB

URL HTTP/2
deconfort.ro/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
Unicode text, UTF-8 text, with very long lines (14924), with no line terminators
Size
3.5 kB (3500 bytes)
Hash
8e3bd2af5dfce9709733e4adabb032ad
94aa210458d7103cecb401ef0a71100ea48c2ed7
a24331f6cb5f0d263a8aa7a78e9105ec5956f82162f30d718fd23fb325d7b669

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Mon, 14 Nov 2022 18:59:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3500
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6

31.14.22.170

200 OK

5.4 kB

URL HTTP/2
deconfort.ro/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
HTML document, ASCII text, with very long lines (21310), with no line terminators
Size
5.4 kB (5350 bytes)
Hash
33081d75af44148dbfd85f7f8f4382ff
a2bac4c76a6a40839a6682df66eb40cd8c4d470d
b8dad2c0f7d74cdfcf2b9f96a17f72886b64edab3e392f7d72df15e1c1ac3119

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Wed, 09 Nov 2022 06:59:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5350
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4

31.14.22.170

200 OK

2.8 kB

URL HTTP/2
deconfort.ro/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text, with very long lines (9937), with no line terminators
Size
2.8 kB (2817 bytes)
Hash
4317b1c024df372435f6482deadddeb3
5c8824a17e40a44ea8fc51568b98bdb1e2e7fab5
3798fb16289ba55459fb6d3b2efa915e3c019c5942759abb7bd19a0ef622b85d

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Wed, 19 Oct 2022 18:59:37 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2817
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4

31.14.22.170

200 OK

3.7 kB

URL HTTP/2
deconfort.ro/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
HTML document, ASCII text, with very long lines (12310), with no line terminators
Size
3.7 kB (3706 bytes)
Hash
dc6411bfa6891b75944f0074c945752d
03c1a8b686c287068c61ab90f58d905496d65085
96abeabc9cc7b4c2b7d46579f2827c67ccd02fbaef0343ae052f71accd381b0d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Wed, 19 Oct 2022 18:59:37 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3706
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/plugins/woo-category-slider-grid/public/js/swiper-config.js?ver=1.4.12

31.14.22.170

200 OK

794 B

URL HTTP/2
deconfort.ro/wp-content/plugins/woo-category-slider-grid/public/js/swiper-config.js?ver=1.4.12
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text
Size
794 B (794 bytes)
Hash
a809352ba12dba9d307afc7104a07cb2
0164f5cffd10a0a112e72fb95ba3ca5d734d3f17
87dc99de507a51dd575b18a97057327f671f154a71e88816e4d7708eb020e654

HTTP Headers

GET /wp-content/plugins/woo-category-slider-grid/public/js/swiper-config.js?ver=1.4.12 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Thu, 24 Nov 2022 18:59:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 794
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/plugins/woo-category-slider-grid/public/js/preloader.min.js?ver=1.4.12

31.14.22.170

200 OK

192 B

URL HTTP/2
deconfort.ro/wp-content/plugins/woo-category-slider-grid/public/js/preloader.min.js?ver=1.4.12
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text, with very long lines (421), with no line terminators
Size
192 B (192 bytes)
Hash
9237455cb5d01c0c5b2ecddbcb451a3b
2a2f2b4b193b2610e829f8209740641252ae158b
0570d4b5258c57fa7e5ff6bf0f0e498cddf8c4076cd3b6fb6b149fc0a1d57473

HTTP Headers

GET /wp-content/plugins/woo-category-slider-grid/public/js/preloader.min.js?ver=1.4.12 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Thu, 24 Nov 2022 18:59:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 192
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/plugins/woo-category-slider-grid/admin/js/woo-category-slider-admin.min.js?ver=1.4.12

31.14.22.170

200 OK

202 B

URL HTTP/2
deconfort.ro/wp-content/plugins/woo-category-slider-grid/admin/js/woo-category-slider-admin.min.js?ver=1.4.12
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text, with very long lines (588), with no line terminators
Size
202 B (202 bytes)
Hash
5af2853f8607d2c960ae6056a3f5f174
dc7ae421bc893312a7081a55c2081c4e0ce9c742
a1dbe9da7385ed84a7185d4d4e869b8d496d0d5bff6ac05e6972a83e0c99402b

HTTP Headers

GET /wp-content/plugins/woo-category-slider-grid/admin/js/woo-category-slider-admin.min.js?ver=1.4.12 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Thu, 24 Nov 2022 18:59:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 202
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0

31.14.22.170

200 OK

3.2 kB

URL HTTP/2
deconfort.ro/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text, with very long lines (9111)
Size
3.2 kB (3247 bytes)
Hash
078e27719ab2b91e57a3d06d05bf24d8
ee2c8af72d9dbb148d4101a374f6026d0c9c3044
1c8b599f3f7bfa8d7950d95a171f2c873d051960a91c91e22304293596e5b890

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Wed, 09 Nov 2022 06:59:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3247
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0

31.14.22.170

200 OK

972 B

URL HTTP/2
deconfort.ro/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
HTML document, ASCII text, with very long lines (3029), with no line terminators
Size
972 B (972 bytes)
Hash
5ed77e0c59800f40061b5c322cff21fa
ced9d401d300dd1fc676a673bbf7e6360beb402d
3b284b8a096256e6cd0d9cbf2cb4b36505e71c0d7b2227fcd3132dddbeea18cc

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Wed, 09 Nov 2022 06:59:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 972
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0

31.14.22.170

200 OK

899 B

URL HTTP/2
deconfort.ro/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text, with very long lines (1668)
Size
899 B (899 bytes)
Hash
22d65ba38528349e705d912ce26bf8ac
c89ba006009043d93b88ff155b4fec8797330550
6253bcb85e4267ad3ba843145534e729ee2c1d7e85e5b4ab5b2e074ae636bca3

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Wed, 09 Nov 2022 06:59:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 899
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0

31.14.22.170

200 OK

677 B

URL HTTP/2
deconfort.ro/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text, with very long lines (2139), with no line terminators
Size
677 B (677 bytes)
Hash
a43fc0dde8fdd69656ad0957e62849c7
4b07cf702ac8a770c8cbffc22b9a788b6e5389ba
1ce3d0493424870c81deec0ec41de0592d2af9f91cd8081cd40a1d7ea89b614f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Wed, 09 Nov 2022 06:59:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 677
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0

31.14.22.170

200 OK

934 B

URL HTTP/2
deconfort.ro/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text, with very long lines (2938), with no line terminators
Size
934 B (934 bytes)
Hash
cf25dd071a208312bdc07f34d2cee027
76119563119eaae392ecc8903c989d98d0b93002
8635ba2cad8f887e72779bd526f8738ff6343c74cba715caf2eddea383ba7ce6

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Wed, 09 Nov 2022 06:59:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 934
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/plugins/wpb-woocommerce-related-products-slider/assets/js/owl.carousel.js?ver=2.3.4

31.14.22.170

200 OK

11 kB

URL HTTP/2
deconfort.ro/wp-content/plugins/wpb-woocommerce-related-products-slider/assets/js/owl.carousel.js?ver=2.3.4
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text, with very long lines (31997)
Size
11 kB (11139 bytes)
Hash
3cb10c6c01ef15e7d2c5ef33c6f06ee5
561a0008fd649a946ff6cdba379547c998cb4582
2107b826f18f7f10f78a38641124da03dad389704816a86136488123a0f01f3d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/wpb-woocommerce-related-products-slider/assets/js/owl.carousel.js?ver=2.3.4 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Mon, 06 Sep 2021 06:57:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11139
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/plugins/wpb-woocommerce-related-products-slider/assets/js/init.js?ver=1.0

31.14.22.170

200 OK

424 B

URL HTTP/2
deconfort.ro/wp-content/plugins/wpb-woocommerce-related-products-slider/assets/js/init.js?ver=1.0
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text
Size
424 B (424 bytes)
Hash
ea1a0f2aae20b967038daa60841b784c
52e89f5cb869ecd84acec5da708f792373392e5e
4579cf1c60d183171a6a67b47401df0e2584468a28920fb70171f80c1b87b114

HTTP Headers

GET /wp-content/plugins/wpb-woocommerce-related-products-slider/assets/js/init.js?ver=1.0 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Mon, 06 Sep 2021 06:57:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 424
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/themes/deconfort/assets/js/third/woo/woo-mini-cart.min.js?ver=1.8.9

31.14.22.170

200 OK

304 B

URL HTTP/2
deconfort.ro/wp-content/themes/deconfort/assets/js/third/woo/woo-mini-cart.min.js?ver=1.8.9
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text, with very long lines (786), with no line terminators
Size
304 B (304 bytes)
Hash
940fb6915a04acbdd6a312942cd73d51
ad145958d6cefb71ad45aadd88c416dfe38b0b31
026ae153b52549feb5b8461912bcb4096ef33735eefe0b9041e1fba13f21d716

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/deconfort/assets/js/third/woo/woo-mini-cart.min.js?ver=1.8.9 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Thu, 17 Dec 2020 05:47:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 304
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-includes/js/imagesloaded.min.js?ver=4.1.4

31.14.22.170

200 OK

1.7 kB

URL HTTP/2
deconfort.ro/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text, with very long lines (5477)
Size
1.7 kB (1733 bytes)
Hash
fa921f07ecc438baf227765de450e215
1fdd49d8bb681cb118ea8d67d4fc61b0ad46cc95
b2cc68637048b04952a2f33163f64571145dbe0817a14c68fe6f1661bd81091f

HTTP Headers

GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Sat, 13 Jun 2020 18:53:26 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1733
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/themes/deconfort/assets/js/third/woo/woo-scripts.min.js?ver=1.8.9

31.14.22.170

200 OK

1.3 kB

URL HTTP/2
deconfort.ro/wp-content/themes/deconfort/assets/js/third/woo/woo-scripts.min.js?ver=1.8.9
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
HTML document, ASCII text, with very long lines (4611), with no line terminators
Size
1.3 kB (1283 bytes)
Hash
77d4c6382ecd5580c1d23f05c58bce3c
d6102c0039215adc820d8c884c674c7ed226c433
d49c6a7f441d11f6aba6edbe5638835bb4c433f9df30b1a4fc285c1d72b74ee5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/deconfort/assets/js/third/woo/woo-scripts.min.js?ver=1.8.9 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Thu, 17 Dec 2020 05:47:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1283
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/themes/deconfort/assets/js/third/magnific-popup.min.js?ver=1.8.9

31.14.22.170

200 OK

6.9 kB

URL HTTP/2
deconfort.ro/wp-content/themes/deconfort/assets/js/third/magnific-popup.min.js?ver=1.8.9
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text, with very long lines (19869), with no line terminators
Size
6.9 kB (6889 bytes)
Hash
583ced44de594bf5bf8ee62a93ee9ae0
c961336a08bbf552819e02385e9dc0094fc5be8d
ab6660233a303e805faa8f82446247661582c1d8ea7467699ee2fee47c92be5d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/deconfort/assets/js/third/magnific-popup.min.js?ver=1.8.9 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Thu, 17 Dec 2020 05:47:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6889
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/themes/deconfort/assets/js/third/lightbox.min.js?ver=1.8.9

31.14.22.170

200 OK

499 B

URL HTTP/2
deconfort.ro/wp-content/themes/deconfort/assets/js/third/lightbox.min.js?ver=1.8.9
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text, with very long lines (1243), with no line terminators
Size
499 B (499 bytes)
Hash
4be5e64fd6b8c2ef6f39a333ba9659bb
f1d87f16c41ab18b657ca031e4b53701537a0215
82b0810e04857a11d133d03b4c43c3303b679e88a6353b6bdb86bd744febc488

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/deconfort/assets/js/third/lightbox.min.js?ver=1.8.9 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Thu, 17 Dec 2020 05:47:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 499
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/themes/deconfort/assets/js/main.min.js?ver=1.8.9

31.14.22.170

200 OK

32 kB

URL HTTP/2
deconfort.ro/wp-content/themes/deconfort/assets/js/main.min.js?ver=1.8.9
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text, with very long lines (65536), with no line terminators
Size
32 kB (32005 bytes)
Hash
882ff23de20809704744685f8b5e1ce4
8487a0e652e2b992ed8302a4aaf5a18bb569e358
8d33868e1796ff9715aa6f5414a15e9dd716eb9af4b04192822a7dd92d40107a

HTTP Headers

GET /wp-content/themes/deconfort/assets/js/main.min.js?ver=1.8.9 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Thu, 17 Dec 2020 05:47:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 32005
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/plugins/ajax-search-for-woocommerce/assets/js/search.min.js?ver=1.20.0

31.14.22.170

200 OK

15 kB

URL HTTP/2
deconfort.ro/wp-content/plugins/ajax-search-for-woocommerce/assets/js/search.min.js?ver=1.20.0
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text, with very long lines (58925)
Size
15 kB (14969 bytes)
Hash
2784233b3cbe2dcac2d53dc3a16867ec
7fe5b20ce07d49da1e035d31a461a5aed3f2f420
905f11629a7a7990ba3080675f56cae221e731db2fb30c09f2e550908ab6ab8b

HTTP Headers

GET /wp-content/plugins/ajax-search-for-woocommerce/assets/js/search.min.js?ver=1.20.0 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:46 GMT
content-type: application/javascript
last-modified: Wed, 14 Sep 2022 16:42:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 14969
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/plugins/woo-category-slider-grid/public/js/swiper.js?ver=1.4.12

31.14.22.170

200 OK

56 kB

URL HTTP/2
deconfort.ro/wp-content/plugins/woo-category-slider-grid/public/js/swiper.js?ver=1.4.12
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text
Size
56 kB (56147 bytes)
Hash
6d0bbaf618fc1ff5fcff828229c16211
0698518d73502278d74d316daa01b8e8618445d8
8f17c97c9ad3d5c4b2332ac3d64009789475a4221087b620e097699e46697f5b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/woo-category-slider-grid/public/js/swiper.js?ver=1.4.12 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Thu, 24 Nov 2022 18:59:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 56147
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1

31.14.22.170

200 OK

4.6 kB

URL HTTP/2
deconfort.ro/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
ASCII text, with very long lines (15660)
Size
4.6 kB (4619 bytes)
Hash
0232689bd203f330529b36a437f41a68
9046583f7469ad38297969f10a9513eb895d5316
feea9f30a6e454579bbeabf236b7abdb0c7de84dd2852422555ad67348c5e886

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:46 GMT
content-type: application/javascript
last-modified: Mon, 06 Jun 2022 09:28:17 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4619
date: Fri, 02 Dec 2022 22:09:46 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/uploads/2020/11/deconfortalb.png

31.14.22.170

200 OK

26 kB

URL HTTP/2
deconfort.ro/wp-content/uploads/2020/11/deconfortalb.png
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
PNG image data, 600 x 223, 8-bit/color RGBA, non-interlaced\012- data
Size
26 kB (25767 bytes)
Hash
888b41b3b9b09dca80d7547ae4b01b02
9566e99677d7a0bd92145fd3c9e3407813abe58f
b959936c6f0467995185cc7323d6e036c4a76ac5daa20aec23fd6e639b372735

HTTP Headers

GET /wp-content/uploads/2020/11/deconfortalb.png HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:46 GMT
content-type: image/png
last-modified: Sun, 01 Nov 2020 19:09:19 GMT
accept-ranges: bytes
content-length: 25767
date: Fri, 02 Dec 2022 22:09:46 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8cd876589951719c94a6d49d1494bdbd
01600c8bb95fac543696e509b3e452b90d844572
e03942321526a2303220b1abd51f82f1d4cf80e0dd22a2582cf809b8bd729521

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 22:09:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

deconfort.ro/wp-content/themes/deconfort/assets/fonts/fontawesome/webfonts/fa-solid-900.woff2

31.14.22.170

200 OK

76 kB

URL HTTP/2
deconfort.ro/wp-content/themes/deconfort/assets/fonts/fontawesome/webfonts/fa-solid-900.woff2
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
Web Open Font Format (Version 2), TrueType, length 75728, version 330.32636\012- data
Size
76 kB (75728 bytes)
Hash
44d537ab79f921fde5a28b2c1636f397
b2879f9e1d0985a96842bf7f55a2b2cc4c636d04
3d1080625d3030e88357b3ac9aa377dcec23f1b529c4ad03f7a9a435ccae04be

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/deconfort/assets/fonts/fontawesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://deconfort.ro/wp-content/themes/deconfort/assets/fonts/fontawesome/css/all.min.css?ver=5.11.2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:46 GMT
content-type: font/woff2
last-modified: Wed, 23 Sep 2020 18:08:28 GMT
accept-ranges: bytes
content-length: 75728
date: Fri, 02 Dec 2022 22:09:46 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/themes/deconfort/assets/fonts/simple-line-icons/Simple-Line-Icons.woff2?v=2.4.0

31.14.22.170

200 OK

30 kB

URL HTTP/2
deconfort.ro/wp-content/themes/deconfort/assets/fonts/simple-line-icons/Simple-Line-Icons.woff2?v=2.4.0
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
Web Open Font Format (Version 2), TrueType, length 30064, version 1.0\012- data
Size
30 kB (30064 bytes)
Hash
0cb0b9c589c0624c9c78dd3d83e946f6
5da603104d4d6e362824ec9e7db32eb2d617949a
104673f4859604362a18fc6294197d8fffb8cb24ad3211e92eb04f655e18cf4a

HTTP Headers

GET /wp-content/themes/deconfort/assets/fonts/simple-line-icons/Simple-Line-Icons.woff2?v=2.4.0 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://deconfort.ro/wp-content/themes/deconfort/assets/css/third/simple-line-icons.min.css?ver=2.4.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:46 GMT
content-type: font/woff2
last-modified: Wed, 23 Sep 2020 18:08:28 GMT
accept-ranges: bytes
content-length: 30064
date: Fri, 02 Dec 2022 22:09:46 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/wp-content/themes/deconfort/assets/fonts/fontawesome/webfonts/fa-brands-400.woff2

31.14.22.170

200 OK

75 kB

URL HTTP/2
deconfort.ro/wp-content/themes/deconfort/assets/fonts/fontawesome/webfonts/fa-brands-400.woff2
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
Web Open Font Format (Version 2), TrueType, length 75336, version 330.32636\012- data
Size
75 kB (75336 bytes)
Hash
cccc9d29470e879e40eb70249d9a2705
5fe986cda635681b4b6bbd6111df2f26d7fca286
d3caf12591d194712facd10bca14f0a924edb59c24447a3fd994a48286db8843

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/deconfort/assets/fonts/fontawesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://deconfort.ro/wp-content/themes/deconfort/assets/fonts/fontawesome/css/all.min.css?ver=5.11.2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:46 GMT
content-type: font/woff2
last-modified: Wed, 23 Sep 2020 18:08:28 GMT
accept-ranges: bytes
content-length: 75336
date: Fri, 02 Dec 2022 22:09:46 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/favicon.ico

31.14.22.170

404 Not Found

1.2 kB

URL HTTP/2
deconfort.ro/favicon.ico
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
1.2 kB (1238 bytes)
Hash
0bde7d4b3da67537eaf9188e6f8049cf
64300fc482d01d38b40ab20e15960b6509665e5a
5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Fri, 02 Dec 2022 22:09:46 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

www.google-analytics.com/analytics.js

142.250.74.110

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Fri, 02 Dec 2022 20:41:08 GMT
expires: Fri, 02 Dec 2022 22:41:08 GMT
cache-control: public, max-age=7200
age: 5318
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3762
Expires: Fri, 02 Dec 2022 23:12:29 GMT
Date: Fri, 02 Dec 2022 22:09:47 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3762
Expires: Fri, 02 Dec 2022 23:12:29 GMT
Date: Fri, 02 Dec 2022 22:09:47 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3762
Expires: Fri, 02 Dec 2022 23:12:29 GMT
Date: Fri, 02 Dec 2022 22:09:47 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3762
Expires: Fri, 02 Dec 2022 23:12:29 GMT
Date: Fri, 02 Dec 2022 22:09:47 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3762
Expires: Fri, 02 Dec 2022 23:12:29 GMT
Date: Fri, 02 Dec 2022 22:09:47 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F231cb69d-ef31-41ab-9446-6cfaebcbc544.webp

34.120.237.76

200 OK

7.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F231cb69d-ef31-41ab-9446-6cfaebcbc544.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.5 kB (7491 bytes)
Hash
be863c89aae9b81ce6aae9b6a560f54b
c879d5cd69263f4034aed5dec94e7a43bfc00840
c68ab0b0daf449e3ed059da94150a686aae2f76d2d0212c11634409b49b85bdc

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F231cb69d-ef31-41ab-9446-6cfaebcbc544.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7491
x-amzn-requestid: 4cd45131-6fd8-45e6-8bc5-fdbfd886b224
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cSsiBEB2IAMFblg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638427a6-725a0f1639a61f5d3c154456;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 03:14:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: STa610as0mDwEpHQHH4ZAfOHDSUyoYivudBfeSCVMlOyACjpKuFoxw==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:50:19 GMT
age: 1168
etag: "c879d5cd69263f4034aed5dec94e7a43bfc00840"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.8 kB (4803 bytes)
Hash
cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: ad2d9243-5e32-4faf-8ff3-b9abd3af1e89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cb1_hEJJIAMF4Vg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387d063-596f5833509112ee6cbedf54;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:51:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jM-fTqLsmU3c_gc9Wle-lvCwXelA9Sid9axtzJQDsfOHv23yUbKsBw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 23:43:28 GMT
age: 80779
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.7 kB (9715 bytes)
Hash
45182367fd4f8b6dd234eef1022acdb1
d4b3052021ff3ad1dc4134fa25eb12a98e7c17da
a57fadaf74db2fb457cfe761314d56f021d22146f5bdb6a8bf11b6519e8a558d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9715
x-amzn-requestid: c8102cfa-78dc-4d81-ad6a-e16b9132e238
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZO2HQKIAMF8IA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f2b-350c586b568e6565763376bd;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0QkVKyYm9UwlF5FEeli9UsRAQwEi3-c3bMR-QSJxIKRQe7WWT76dGQ==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:51:06 GMT
age: 1121
etag: "d4b3052021ff3ad1dc4134fa25eb12a98e7c17da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e545217-31b4-442a-abef-bcaaffcd0407.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.4 kB (9449 bytes)
Hash
249aec334460c66dc88b9e8def4e48df
f86d1d278ba5b24587b10519b1b30d75044efd97
b083151804ced0533a5b33302ef110b50ddc4bf653de0fb8f6c7711f4bc29fe2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e545217-31b4-442a-abef-bcaaffcd0407.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9449
x-amzn-requestid: c21c52f9-d971-46d9-b632-0439a0e23da4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZkxHKbIAMFxkQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6fb7-2b8cc0982af568626f4a4bbf;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:35:51 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XFIpOllaPcRJOsgZI2EVDyFv-Doz62OcY6gxFlejoXxdeVGya-PNFg==
via: 1.1 b838ef1ff22a4a994af82d5178c30e1c.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:53:26 GMT
age: 981
etag: "f86d1d278ba5b24587b10519b1b30d75044efd97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b481c9e-a8af-468b-b839-a5948a749564.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.0 kB (4996 bytes)
Hash
49fea74a471d9b45d94402298988d827
11dbe272c75ad8dda9fe66062f761ad0a978c350
ddcf2de56e0fa45e50b45bb021a7b212ddf1ba5a108a849df04ad109809913bc

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b481c9e-a8af-468b-b839-a5948a749564.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4996
x-amzn-requestid: ac93701b-5591-447b-abcd-6dd7c8236d63
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZN1EmIoAMFUyg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f25-62984f247ab5233275eefc7f;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:25 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vGYoBLRpnjjxEKkZe8ZJKTn-fPpiKwyvQqUUujW3Ro0cO2R__q-OAg==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:49:27 GMT
age: 1220
etag: "11dbe272c75ad8dda9fe66062f761ad0a978c350"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59297fb7-bcb3-48eb-83b5-7d264b21c3db.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.0 kB (8016 bytes)
Hash
436b46a2eea584bd8ec1dba5603c8659
fed437d1919af63f9d58396f318568aadae3d868
fff21dd129f35807bfc29c6582661a79e764238076e540968b57fcad18811566

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59297fb7-bcb3-48eb-83b5-7d264b21c3db.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8016
x-amzn-requestid: bfb5f288-4467-467a-9b30-1055a4e6bc54
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZPeE4nIAMFvnQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f2f-53a5a66704157f4e003ecfa4;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:35 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lUqXgbpEaZh9DO_rv0K5pzHUAF1DsASkKYNTU6t5AUWZjHNV9LRojA==
via: 1.1 aabd01c4a20dae837d162bd972422efc.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 22:01:05 GMT
age: 522
etag: "fed437d1919af63f9d58396f318568aadae3d868"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

deconfort.ro/?wc-ajax=get_refreshed_fragments

31.14.22.170

200 OK

284 B

URL HTTP/2
deconfort.ro/?wc-ajax=get_refreshed_fragments
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type
JSON data\012- HTML document, ASCII text, with very long lines (538), with no line terminators
Size
284 B (284 bytes)
Hash
5bd77be4f28cdb52d221ed61116b5de5
732cba8e91f8fd560437b2e3c2e27fce297d9907
4d8fe70a11e6225e171a9776df334f37d53ec1181e72996020232069cc41f72c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://deconfort.ro
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Cookie: cookielawinfo-checkbox-necessary=yes; cookielawinfo-checkbox-non-necessary=yes
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-ua-compatible: IE=edge
access-control-allow-origin: https://deconfort.ro
access-control-allow-credentials: true
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-robots-tag: noindex
content-type: application/json; charset=UTF-8
content-length: 284
content-encoding: br
vary: Accept-Encoding
date: Fri, 02 Dec 2022 22:09:47 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

deconfort.ro/xr/adobe/

31.14.22.170

404 Not Found

0 B

URL HTTP/2
deconfort.ro/xr/adobe/
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /xr/adobe/ HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
x-ua-compatible: IE=edge
link: <https://deconfort.ro/wp-json/>; rel="https://api.w.org/"
content-encoding: br
vary: Accept-Encoding
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

deconfort.ro/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.15.0

31.14.22.170

200 OK

0 B

URL HTTP/2
deconfort.ro/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.15.0
IP
31.14.22.170:0
ASN
#5606 GTS Telecom SRL

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.15.0 HTTP/1.1
Host: deconfort.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deconfort.ro/xr/adobe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 22:09:45 GMT
content-type: application/javascript
last-modified: Mon, 14 Nov 2022 18:59:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6249
date: Fri, 02 Dec 2022 22:09:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (43)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations